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1 VjrtyaLniacM^ 

David Lie, Chandramohan A. Thekkath, Mark Horowitz 

October 2003 Proceedings of the nineteenth ACM symposium on Operating systems 
principles 

Full text available: ^pgft230.S7 KB - Additional Information: foil cation , abstract, re&rences, index terms 

Recently, there has been considerable interest in providing "trusted computing platforms" 
using hardware^— ~TCPA and Palladium being the most publicly visible examples. In this 
paper we discuss our experience with building such a platform using a traditional time- 
sharing operating system executing on XOM~— ~a processor architecture that provides 
copy protection and tamper-resistance functions. In XOM, only the processor is trusted; 
main memory and the operating system are not trusted. Our opera ... 

Keywords: XOM, XOMOS, untrusted operating systems 



2 A database encryption system with subkeys 
George I. Davida, David L. Wells, John B. Kam 

June 1981 ACM Transactions on Database Systems (TODS), volume 6 issue 2 

Additional Information: Mi.ejfeIi.QD.. abstract, references, citings, Index 
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A new cryptosystem that is suitable for database encryption is presented. The system has 
the important property of having subkeys that allow the encryption and decryption of fields 
within a record. The system is based on the Chinese Remainder Theorem. 



Keywords: data security, databases, decryption, encryption, subkeys 
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James Goodman, Anantha P. Chandrakasan 
January 1998 Wireless Networks, volume 4 issue l 

Fult text available: *g .pdg7.39„MB}. Additional Information: ftiiicji&Mon, s&s&aet, rejejenc^:^ index teriTis 

Secure transmission of multimedia information (e.g., voice, video, data, etc.) is critical in 
many wireless network applications. Wireless transmission imposes constraints not found in 
typical wired systems such as low power consumption, tolerance to high bit error rates, and 



http://portal.acm. org/resultsxfm?query=operating%20system%20encryption&querydisp=oper... 2/4/05 



Results (page 1): operating system encryption 



Page 2 of 6 



scalability. A variety of low power techniques have been developed to reduce the power of 
several encryption algorithms. One key idea involves exploiting the variation in computation 
requirements to dynamically vary th ... 

4 AuthentjcMLonja H 
Edward Wobber, Martin Abadi, Michael Burrows, Butler Lampson 
February 1994 ACM Transactions on Computer Systems (TOCS), volume 12 issue 1 

Full text available: f ulfil 88 MB- Additional Information: Mcitation, abstract, reMence^ citing. Index 
' terrris, reyjeyy. 

We describe a design for security in a distributed system and its implementation. In our 
design, applications gain access to security services through a narrow interface. This 
interface provides a notion of identity that includes simple principals, groups, roles, and 
delegations. A new operating system component manages principals, credentials, and 
secure channels. It checks credentials according to the formal rules of a logic of 
authentication. Our implementation is efficient enough to sup ... 

Keywords: cryptography, mathematical logic 
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Stefan Ludwig, Winfried Kalfa 

October 2001 ACM SIGOPS Operating Systems Review, volume 35 issue 4 

Full text available: ^.pdfi6§5..38 KB}. Additional Information: MLSi&iion. abstrasf., references, index te-rns 

Existing cryptographic file systems for Unix do not take into account that sensitive data 
must often be shared with other users, but still kept secret. By design, the only one who has 
access to the secret data is the person who encrypted it and therefore knows the encryption 
key or password. This paper presents a kernel driver for a new encrypted file system, called 
Fairly Secure File System (FSFS), which provides mechanisms for user management and 
access control for encrypted files. The driver ... 

Authenticate 

Edward Wobber, Martin Abadi, Michael Burrows, Butler Lampson 

December 1993 ACM SIGOPS Operating Systems Review , Proceedings of the 

fourteenth ACM symposium on Operating systems principles, volume 27 

Issue 5 

Full text available: «pdff1 4$ MB) Additional Information: jujl citation, abstract, foresees, citing, Index 
* terrns 

We describe a design and implementation of security for a distributed system. In our 
system, applications access security services through a narrow interface. This interface 
provides a notion of identity that includes simple principals, groups, roles, and delegations. 
A new operating system component manages principals, credentials, and secure channels. It 
checks credentials according to the formal rules of a logic of authentication. Our 
implementation is efficient enough to support a substantia ... 

QCELAbiocj^ 

Phillip Rogaway, Mihir Bellare, John Black 

August 2003 ACM Transactions on Information and System Security (TISSEC) volume 6 

Issue 3 

Full text available: ^.P.dfi§68.. 74 K&\ Additional information: fell.c/jtatipn, abstract, reM££££$, index terns 

We describe a parallelizable block-cipher mode of operation that simultaneously provides 
privacy and authenticity. OCB encrypts-and-authenticates a nonempty string M &in; 
&Jcub;0, l&rcub;* using □&vertbar;M8tvertbar;//?D + 2 block-cipher invocations, where n is 
the block length of the underlying block cipher. Additional overhead is small. OCB refines a 
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scheme, IAPM, suggested by Charanjit Jutla. Desirable properties of OCB include the ability 
to encrypt a bi ... 

Keywords: AES, authenticity, block-cipher usage, cryptography, encryption, integrity, 
modes of operation, provable security, standards 



8 Encryption^ 

Gerald J. Popek, Charles S. Kline 

December 1979 ACM Computing Surveys (CSUR), volume n issue 4 

Full text available: ^&dj(2 ; 50 }AB\ Additional Information: Mixtion, references, citings, index terms 



9 Separating key management from file system security 

David Mazieres, Michael Kaminsky, M. Frans Kaashoek, Emmett Witchel 
December 1999 ACM SIGOPS Operating Systems Review , Proceedings of the 

seventeenth ACM symposium on Operating systems principles, volume 33 

Issue 5 

1- 11* ^ 1 ui ^ nrvi Additional Information: foil citato 

Full text available: f?|£aft 1 . / 7 MB) J ' J ' 

^ terms 

No secure network file system has ever grown to span the Internet. Existing systems all lack 
adequate key management for security at a global scale. Given the diversity of the Internet, 
any particular mechanism a file system employs to manage keys will fail to support many 
types of use. We propose separating key management from file system security, letting the 
world share a single global file system no matter how individuals manage keys. We present 
SFS, a secure file system that avoids internal ... 

1 0 A fast. M PES. video. enc0pLion„algor ithm 
Changgui Shi, Bharat Bhargava 

September 1998 Proceedings of the sixth ACM international conference on Multimedia 

Full text available: ^pdf(B05,.§8.KBj Additional Information: MLcftafion, references, cifecss, index ternis 



Keywords: DES, MPEG codec, MPEG video encryption, multimedia data security 
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Butler Lampson, Martin Abadi, Michael Burrows, Edward Wobber 

November 1992 ACM Transactions on Computer Systems (TOCS), Volume 10 issue 4 

Additional Information: tulLoitatjon, abstract, references, citings, index 



Full text available: p jpdfl(3 37 MB) 

Mms, review 

We describe a theory of authentication and a system that implements it. Our theory is based 
on the notion of principal and a "speaks for" relation between principals. A simple principal 
either has a name or is a communication channel; a compound principal can express an 
adopted role or delegated authority. The theory shows how to reason about a principal's 
authority by deducing the other principals that it can speak for; authenticating a channel is 
one important application. We ... 

Keywords: certification authority, delegation, group, interprocess communication, key 
distribution, loading programs, path name, principal, role, secure channel, speaks for, 
trusted computing base 
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1 2 Authenij^iiOT^ [ 
Butler Lampson, Martin Abadi, Michael Burrows, Edward Wobber 

September 1991 ACM SIGOPS Operating Systems Review , Proceedings of the 

thirteenth ACM symposium on Operating systems principles, volume 25 

Issue 5 

Full text available: IMprtKLM MB) Addjtional ,nformation: M citation, abstract, references, citings, Index 

We describe a theory of authentication and a system that implements it. Our theory is based 
on the notion of principal and a "speaks for" relation between principals. A simple principal 
either has a name or is a communication channel; a compound principal can express an 
adopted role or delegation of authority. The theory explains how to reason about a 
principal's authority by deducing the other principals that it can speak for; authenticating a 
channel is one important application. We use the th ... 

1 3 DecsntM^ i 

Atul Adya, William J. Bolosky, Miguel Castro, Gerald Cermak, Ronnie Chaiken, John R. 
Douceur, Jon Howell, Jacob R. Lorch, Marvin Theimer, Roger P. Wattenhofer 
December 2002 ACM SIGOPS Operating Systems Review, volume 36 issue si 

Full text available: ^pdf(j. ; 87„:v1B). Additional Information: ,M citation, abstract references 

Farsite is a secure, scalable file system that logically functions as a centralized file server but 
is physically distributed among a set of untrusted computers. Farsite provides file availability 
and reliability through randomized replicated storage; it ensures the secrecy of file contents 
with cryptographic techniques; it maintains the integrity of file and directory data with a 
Byzantine-fault-tolerant protocol; it is designed to be scalable by using a distributed hint 
mechanism and delegatio ... 

14 Papers: Context-agile encryption for high speed communication networks | 
Lyndon G. Pierson, Edward L. Witzke, Mark O. Bean, Gerry J. Trombley 

January 1999 ACM SIGCOMM Computer Communication Review, volume 29 issue l 

Full text available: ^.pdf(l,43.MBj Additional Information: fujj.citaiion, abstract, re&r&nces 

Different applications have different security requirements for data privacy, data integrity, 
and authentication. Encryption is one technique that addresses these requirements. 
Encryption hardware, designed for use in high-speed communications networks, can satisfy 
a wide variety of security requirements if the hardware implementation is key-agile, key 
length-agile, mode-agile, and algorithm-agile. Hence, context-agile encryption provides 
enhanced solutions to the secrecy, interoperability, and ... 

15 Access Control Models and Mechanisms: Cryptographic access control in a distributed | 
file system 

Anthony Harrington, Christian Jensen 

June 2003 Proceedings of the eighth ACM symposium on Access control models and 
technologies 

Full text available: ^.gdft2±9 A 24. KB). Additional Information: feLLcitatipn, abstract, references, index terns 

Traditional access control mechanisms rely on a reference monitor to mediate access to 
protected resources. Reference monitors are inherently centralized and existing attempts to 
distribute the functionality of the reference monitor suffer from problems of 
scalability. Cryptographic access control is a new distributed access control paradigm 
designed for a global federation of information systems. It defines an implicit access control 
mechanism, which relies exclusively on cryptography to provide ... 

Keywords: access control, cryptography, network file systems 
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Bharat Bhargava, Changgui Shi, Sheng-Yih Wang 

September 2004 Multimedia Tools and Applications, volume 24 issue l 

Full text available: ||| p^g^r ^ e Additional Information: feiLLcltatipnj abstrsct, index terms 

Multimedia data security is important for multimedia commerce. Previous cryptography 
studies have focused on text data. The encryption algorithms developed to secure text data 
may not be suitable to multimedia applications because of the large data size and real time 
constraint. For multimedia applications, light weight encryption algorithms are attractive. 

We present four fast MPEG video encryption algorithms. These algorithms use a secret key 
to randomly change the sign bits of Discre ... 

Keywords: MPEG codec, MPEG video encryption, multimedia data security 



1 7 Security jn. em 

Srivaths Ravi, Anand Raghunathan, Paul Kocher, Sunil Hattangady 

August 2004 ACM Transactions on Embedded Computing Systems (TECS), volume 3 issue 3 

Full text available: p$ti 3.67 MB) Additional Information: full citation , abstract, references , index terms 

Many modern electronic systems— including personal computers, PDAs, cell phones, 
network routers, smart cards, and networked sensors to name a few— need to access, 
store, manipulate, or communicate sensitive information, making security a serious concern 
in their design. Embedded systems, which account for a wide range of products from the 
electronics, semiconductor, telecommunications, and networking industries, face some of 
the most demanding security concerns— -on the one hand, they are oft ... 

Keywords: Embedded systems, architecture, authentication, battery life, cryptographic 
algorithms, decryption, encryption, hardware design, processing requirements, security, 
security attacks, security protocols, tamper resistance 
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Mihir Beilare, Tadayoshi Kohno, Chanathip Namprempre 

May 2004 ACM Transactions on Information and System Security (TISSEC), volume 7 

Issue 2 

Full text available: ^p^.ftiPASS.KBj Additional Information: Ml citation, abstract, reference^, lociex teriris 

The secure shell (SSH) protocol is one of the most popular cryptographic protocols on the 
Internet. Unfortunately, the current SSH authenticated encryption mechanism is insecure. In 
this paper, we propose several fixes to the SSH protocol and, using techniques from modern 
cryptography, we prove that our modified versions of SSH meet strong new chosen- 
ciphertext privacy and integrity requirements. Furthermore, our proposed fixes will require 
relatively little modification to the SSH protoc ... 

Keywords: Authenticated encryption, secure shell, security proofs, stateful decryption 
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V. B. Izotov, A. A. Moldovyan, N. A. Moldovyan 

June 2001 Automation and Remote Control, volume 62 issue 6 
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Full text available: [J|L . .. t Additional Information: foil citation , abstract 

A new controlled operation-based approach was proposed to construct fast algorithms of 
information processing to tackle efficiently the topical problems of information protection in 
high-performance automated control systems. Design criteria were discussed, and the 
algebraic and probabilistic characteristics of the controlled dyadic operations were studied. 
Consideration was given to the promising methods of encryption for wide application in the 
information-protection facilities of the aut ... 
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August 1989 ACM Transactions on Computer Systems (TOCS), volume i issue 3 

Additional Information: Ml citation, abstf^ct, references, cjtjncss, index 



Full text available: "M|>dfr2.80 MB) 

* terms, review 

Andrew is a distributed computing environment that is a synthesis of the personal 
computing and timesharing paradigms. When mature, it is expected to encompass over 
5,000 workstations spanning the Carnegie Mellon University campus. This paper examines 
the security issues that arise in such an environment and describes the mechanisms that 
have been developed to address them. These mechanisms include the logical and physical 
separation of servers and clients, support for secure communication ... 
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